Who you areA successful candidate will need a combination of troubleshooting, technical, and communication skills, as well as the ability to handle a mix of disparate tasks which may include small-projects in addition to managing incident response activitiesThis role requires you to be a national of an EU member state3+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experienceKnowledge of commonly found software security vulnerabilities (like OWASP top 10) and remediation techniques2+ years of programming in one of the following or similar: Python, Ruby, Go, Swift, Java, .Net, C++Experience with AWS products and servicesExperience with any combination of the following: threat modelling, secure coding, identity management and authentication, software development, cryptography, system administration and network securityExperience with Security Engineering (building tools) and Assurance methodologies e.g. fuzzing, static and dynamic code analysisWhat the job involvesA Security Engineer must foster constructive dialogue and seek resolution when confronted with discordant viewsEngineers in this role are expected to participate fully in the planning of the security team's work and constantly seek opportunities for process improvementThey should also have a deep understanding of at least one specialty for which they are a sought out resource (both within AWS and Partner Security, and by groups throughout Amazon), while having an understanding of the application of Information Security in a broad range of technical areasYou will have the combination of troubleshooting, technical, and communication skills, as well as the ability to handle a mix of disparate tasks which may include project and software development workThis role will provide career growth opportunities as you gain new security skills in the course of your dutiesTriage new incoming issues to determine the level of risk they present to AWS, and then accordingly prioritise its remediation in conjunction with the impacted service teamParticipate in efforts to promote security throughout the Company and build good working relationships within the team and with others across AmazonDemonstrate high capacity and tolerance for context switching and interruptions while remaining productive and effectiveEscalate issues to senior AWS leadership if you feel your issues are not progressing at the correct pace based on impact to ensure we are putting customers firstExplore building and improving our tooling to make your own life easier and share that benefit with all our engineers globallyAssistance with recruiting activities and administrative workLead the triage and response to security incidents, assessing their potential impact on AWS systems and customersCoordinate with service teams to implement rapid, effective remediation strategiesDevelop and maintain incident response playbooks and proceduresSecurity Operations:Monitor security alerts and logs to detect potential threats or anomaliesConduct thorough post-incident analyses and contribute to lessons-learned documentationCollaborate with other security teams to improve detection and response capabilitiesAutomation and Tool Development:Design and implement automation tools to enhance incident response efficiency and effectivenessContinuously improve existing security tooling and processesShare innovations and best practices with the global AWS security community